I've installed Office 365 on a Windows Server 2012 R2 machine with IESC enabled. When trying to activate Office it prompts me to sign in and as soon as I enter an email address it says:
Cookies must be allowed
Your browser is currently set to block cookies. Your browser must allow cookies before you can use a Microsoft account.
Cookies are small text files stored on your computer that tell Microsoft sites and services when you're signed in. To learn how to allow cookies, see online help in your web browser.
It says this even if I set Internet Options, Privacy to "Accept All Cookies" or check "Override automatic cookie handling" and select "Accept" for both first-party and third-party cookies.
What do I need to do to allow Office to activate?
Click 'Tools' (the gear icon) in the browser toolbar. Choose Internet Options. Click the Privacy tab, and then, under Settings, move the slider to the top to block all cookies or to the bottom to allow all cookies, and then click OK.
Step 1. Identify and fix activation issues by using the Support and Recovery Assistant for Office 365. The Support and Recovery Assistant app runs on Windows PCs and can help you identify and fix activation issues with Office 365. Office 365: Use the Support and Recovery Assistant for Office 365. Step 2. Check whether you're behind a proxy server
Your Office product or Microsoft 365 subscription should be listed there. If it's not, your email address won't work for signing in to Office. Activation can fail if you have multiple copies of Office installed.
Here's how to enable cookies if your browser is blocking them: In the Edge window, select More (...) > Settings > View advanced settings. In Internet Explorer, in the menu bar, select Tools > Internet options > Privacy > Advanced. Select Accept or Prompt under First-party Cookies, and Accept or Prompt under Third-party Cookies. Select OK.
Activation can fail if you have multiple copies of Office installed. Let's uninstall any versions of Office you aren't using before we continue to troubleshoot. Open Control Panel using the steps below for your operating system.
I spent way too much time on this silly issue. Following any one of the following bullet points may fix this for you. Pick one that you like:
Open Internet Explorer. From the Settings (gear) menu, select Internet Options/Privacy Tab/Settings Advanced Button. Notice that the Third-party cookies
radio button says "Accept"? Click "Block", Click "Accept" and then Ok, Ok your way out. Yes, you are setting it right back to where it started! Each user needs to do this separately.
As similarly answered by Danny adding https://*.microsoftonline.com to the trusted sites in Internet Options fixes this issue. I know some others are reporting this doesn't work but it works for me with Server 2016. The correct entry can be discovered by using the nirsoft dnsquerysniffer during the office 365 login process. Here's some PowerShell to create a registry entry. The nice part about this registry entry is that it seems to fix this issue for all users.
$regPath = 'HKLM:\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\microsoftonline.com'
$regProperty = 'https'
$regValue = '2'
New-Item -Path $regPath -Force -Verbose
New-ItemProperty -Path $regPath -Name $regProperty -Value $regValue -Force -Verbose -Type DWord
Set HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3\1A10
to 1. Note you will have to do this for each user so this may be a good solution for those of you who can control user registry properties through group policy or other means.
The first bullet point from BradT's answer was half the problem for me and extremely non-obvious. The other half was unchecking "Enable Protected Mode" under Security for "Internet".
I was able to reproduce the problem by checking "Enable protected Mode". Once checked, even if I unchecked it, the problem persisted until I repeated the radio button reset for third party cookies. This means that the order of operation matters for these two actions. Resetting your security/Internet options to "Default level" enables protected mode, and so will recreate this problem until protected mode is unchecked and the radio button reset.
I didn't need to add any site to trusted sites. The actions below seemed to be all that was needed for me.
1.) Security --> Internet --> Uncheck Protected Mode
2.) Reset Third-Party Cookies Enabled by deselected and re-selecting the radio button
This non-obvious usage blocking out-of-the-box incompatibility seems ridiculous... and the funny thing is since it's Microsoft I just shrug.
Got it finally working for mine. I hope yours works too using the below method.
Open regedit.exe
navigate to:
HKEY_LOCAL_MACHINE\
SOFTWARE\
Policies\
Microsoft\
Windows\
CurrentVersion\
Internet Settings\
ZoneMapKey
then on the right hand side, right click and add 'String Value' and name with the below sites and then enter AND THEN double click on their name and enter 'Data Value' 2
*.microsoft.com
*.microsoftonline.com
*.office.com
*.visualstudio.com
*.live.com
and also on my internet explorer > tools > internet options
security tab: internet (uncheck - Enable Protected Mode ...)
privacy tab: settings bar to Medium and then click on 'sites' and add the above list of sites. Thats it. good luck.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With